[Free Webinar] Guide to Securing Your Entire Identity Lifecycle Against AI-Powered Threats

Chinese Hackers Abuse IPv6 SLAAC for AitM Attacks via Spellbinder Lateral Movement Tool

Customer Account Takeovers: The Multi-Billion Dollar Problem You Don’t Know About

RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control

Meta Launches LlamaFirewall Framework to Stop AI Jailbreaks, Injections, and Insecure Code

Cybersecurity researchers have discovered two malicious packages on the npm registry that are designed to infect another locally installed package, underscoring the continued evolution of software supply chain attacks targeting the open-source ecosystem.
The packages in question are ethers-provider2 and ethers-providerz, with the former downloaded 73 times to date since it was published on

Headline

Malicious npm Package Modifies Local 'ethers' Library to Launch Reverse Shell Attacks

The Hacker News: Latest News